Terms of Service

1. Acceptance of terms

By accessing or using Flowlyt ("the Service"), you agree to be bound by these Terms of Service. If you do not agree, do not use the Service.

These terms apply to all users, including individuals accessing the free tier and teams on paid plans.

2. Description of service

Flowlyt is a CI/CD security scanning platform that analyzes GitHub Actions workflows, GitLab CI pipelines, and related pipeline configurations for security misconfigurations, exposed secrets, and supply chain risks.

The Service includes a web dashboard, a command-line interface (CLI), and integrations with version control platforms. Features vary by plan.

3. Account registration

You must create an account to use most features of the Service. You are responsible for maintaining the confidentiality of your credentials and for all activity that occurs under your account.

You must provide accurate information during registration and keep it current. Accounts may not be shared between individuals.

4. Acceptable use

You agree not to: — Use the Service to scan repositories you do not own or lack authorization to scan. — Attempt to reverse-engineer, decompile, or extract source code from the Service. — Use the Service to circumvent security controls in third-party systems. — Resell, sublicense, or otherwise provide access to the Service to third parties without authorization. — Engage in any activity that disrupts or degrades the availability or integrity of the Service.

5. Data and repository access

To provide its scanning functionality, Flowlyt requires read access to the workflow and pipeline configuration files in your connected repositories. This access is granted via OAuth with the minimum required scopes.

You retain all ownership of your code and configuration files. Flowlyt does not claim any rights over your repository content.

6. Subscription and payment

Paid plans are billed monthly or annually in advance. Prices are stated in US dollars. You authorize Flowlyt to charge your payment method on the applicable billing cycle.

Failure to pay may result in suspension of your account. Refunds are not provided for partial billing periods except where required by law.

7. Free tier

The free tier is provided without charge and is subject to usage limits stated on the pricing page. Flowlyt reserves the right to modify or discontinue the free tier at any time with reasonable notice.

8. Intellectual property

The Flowlyt platform, including its software, design, documentation, and detection rules, is the intellectual property of Flowlyt. These terms do not grant you any rights in Flowlyt's intellectual property beyond what is necessary to use the Service as described.

The Flowlyt CLI is open source and governed by its own license at github.com/harekrishnarai/flowlyt.

9. Disclaimers

The Service is provided "as is" and "as available." Flowlyt makes no warranty that the Service will be uninterrupted, error-free, or that all security issues in your pipelines will be detected.

Security scanning is a risk-reduction tool, not a guarantee of security. You remain responsible for the security of your systems.

10. Limitation of liability

To the fullest extent permitted by law, Flowlyt's liability for any claim arising from your use of the Service is limited to the amount you paid to Flowlyt in the three months preceding the claim.

Flowlyt is not liable for indirect, incidental, consequential, or punitive damages, including loss of data or loss of profits.

11. Termination

Either party may terminate these terms at any time. You may delete your account through the dashboard. Flowlyt may suspend or terminate your access for breach of these terms, non-payment, or other violations.

Upon termination, your right to use the Service ceases. Data is retained for 30 days after account deletion before permanent removal.

12. Changes to these terms

We may update these terms as the Service evolves. Significant changes will be communicated by email or a prominent notice in the dashboard. Continued use of the Service after changes take effect constitutes acceptance of the updated terms.

13. Contact

For questions about these terms, contact us at legal@flowlyt.dev.